Application Security Terminology

Format String Attack

A Format String attack can occur when the submitted data of an input string is evaluated as a command by the application. Taking advantage of a Format String vulnerability, an attacker can execute code, read the stack, or cause a segmentation fault in the running application – causing new behaviors that compromise the security or the stability of the system.